Admin & Staff Access Policy

1. Need-to-Know Access

Administrative access must be granted only to persons who need the access to perform legitimate church or platform duties. Access should be reviewed regularly and removed immediately when no longer needed.

2. Sensitive Role Categories

Sensitive roles may include Pastor, Senior Pastor, Admin, Role Manager, Finance, Care Team, Prayer Team, Attendance Manager, Event Manager, Support, and Developer. Each role should receive only the permissions required for its purpose.

3. Prohibited Admin Conduct

Administrators must not browse member data out of curiosity, disclose private prayer or counseling information, misuse attendance/location data, export member lists without authority, retaliate against users, assign roles carelessly, use finance records improperly, or access another church’s data.

4. Role Changes

Role changes should be logged where possible. Churches should verify requests before granting high-risk permissions. Access should be revoked when a person leaves leadership, leaves the church, changes ministry duties, or loses authorization.

5. Confidentiality

Admins and staff must treat member data, messages, prayer requests, pastoral-care records, support tickets, attendance records, and giving records as confidential. Disclosure should be limited to authorized ministry, safety, support, or legal purposes.

6. Account Security for Admins

Admins should use strong passwords, keep devices secure, avoid shared accounts, report suspicious access, and sign out of public/shared devices. Shared administrator accounts are strongly discouraged.